Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/hah8-tPveOlTXjjf9fZEKD7581Q.roa
File: hah8-tPveOlTXjjf9fZEKD7581Q.roa (raw, json)
Hash identifier: sqcn2tbXE3jMbfi13vFyt8NbYzazYOxCMgxQ+6LfOpg=
Subject key identifier: 85:A8:7C:FA:D3:EF:78:E9:53:5E:38:DF:F5:F6:44:28:3E:F9:F3:54
Certificate issuer: /CN=7b1bdecba944f7ee10e90691311fc0f843436ba1
Certificate serial: 018B424CB9E44D354ED5DEF6FBC20EEE5674
Authority key identifier: 7B:1B:DE:CB:A9:44:F7:EE:10:E9:06:91:31:1F:C0:F8:43:43:6B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/exvey6lE9-4Q6QaRMR_A-ENDa6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/hah8-tPveOlTXjjf9fZEKD7581Q.roa
Signing time: Wed 18 Oct 2023 10:20:06 +0000
ROA not before: Wed 18 Oct 2023 10:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.115.89.0/24 maxlen: 24
185.115.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:4c:b9:e4:4d:35:4e:d5:de:f6:fb:c2:0e:ee:56:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b1bdecba944f7ee10e90691311fc0f843436ba1
Validity
Not Before: Oct 18 10:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85a87cfad3ef78e9535e38dff5f644283ef9f354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a4:b3:9c:71:e8:a0:1e:12:05:4b:fd:c8:98:
22:33:a4:7a:21:07:41:59:57:f5:ed:c4:b6:ea:92:
18:e4:22:95:46:cd:fd:81:f7:52:6c:2e:c7:ef:10:
d7:d1:e9:0a:0a:13:50:4b:15:0a:72:9d:fa:8d:4e:
07:d3:dd:10:3e:de:85:20:23:ea:05:32:73:fc:19:
9c:4d:55:6c:c9:32:09:b2:b9:70:5b:de:a1:fe:30:
74:bf:8f:20:87:77:14:7f:f1:ab:93:39:75:0e:b7:
45:9d:74:30:9b:f0:56:74:57:db:11:32:40:10:7b:
65:d7:ad:45:17:cc:35:a7:2b:2c:d7:56:d5:ae:25:
90:de:24:9c:d2:1e:e1:70:9e:4f:df:8b:9a:66:71:
64:9b:4e:ec:ea:03:68:4f:76:50:82:94:7e:4f:30:
f7:2c:82:3f:22:61:22:15:51:02:1c:93:0d:be:b9:
4d:f6:bb:3b:64:ca:7b:7e:29:08:7e:6d:67:1d:15:
4a:c3:72:6f:26:52:d1:1e:39:1d:12:ef:c5:2e:a9:
85:a8:9e:72:f1:0b:96:3b:70:f8:11:88:1c:3c:c1:
a0:1b:f2:65:03:99:6a:7e:9a:9c:6f:15:03:71:32:
44:e3:31:31:16:ff:1b:3d:69:5f:2e:e5:90:62:21:
76:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A8:7C:FA:D3:EF:78:E9:53:5E:38:DF:F5:F6:44:28:3E:F9:F3:54
X509v3 Authority Key Identifier:
keyid:7B:1B:DE:CB:A9:44:F7:EE:10:E9:06:91:31:1F:C0:F8:43:43:6B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/exvey6lE9-4Q6QaRMR_A-ENDa6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/hah8-tPveOlTXjjf9fZEKD7581Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/exvey6lE9-4Q6QaRMR_A-ENDa6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.88.0/23
Signature Algorithm: sha256WithRSAEncryption
ce:52:fa:70:4f:23:8a:97:e3:d7:8e:a8:eb:4b:fa:84:76:e4:
14:6b:33:7f:1d:04:e1:1e:11:b9:03:8e:01:de:27:d9:f5:9d:
9c:65:76:97:4e:3a:85:c9:28:24:33:1d:8b:fd:c4:6e:6e:8b:
6c:5c:78:2c:5f:68:33:e2:a8:c8:82:87:5d:56:af:82:dc:72:
2e:9c:a0:90:90:2a:39:33:c0:c8:a7:d0:5f:16:0b:a8:30:e6:
46:ee:81:4b:5c:d9:0c:da:0e:59:0e:4b:e5:71:7e:ac:6e:da:
e9:50:f5:00:2c:bd:4a:23:a1:4d:06:6d:9b:87:c1:b0:9e:be:
cf:62:47:13:04:38:8f:06:2f:1d:6c:b3:8f:4c:ab:be:3e:15:
63:dd:4a:d7:4c:56:85:16:f0:b2:d7:31:5d:ca:f4:5e:d6:22:
93:13:e2:42:e3:40:30:bd:73:5e:85:7e:e3:b4:7d:11:08:5c:
19:13:00:39:e9:55:1e:b8:0c:e0:ca:84:43:20:29:9c:f3:e5:
63:41:eb:b5:a2:3e:6c:0c:14:ec:ef:d0:4b:2f:88:34:de:34:
b5:23:23:a7:4e:6d:0a:2b:5d:65:1d:5d:e3:04:7d:a7:04:c9:
5e:51:47:81:35:3d:f9:b3:2e:c6:76:b9:23:b9:f8:2d:b1:ce:
f4:54:d6:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:42 2024 by rpki-client on console-ams.rpki-client.org